For May, Patch Tuesday means 139 updates — but no zero-days

Microsoft delivered fixes for issues affecting everything from Windows to Office, .NET, and SQL Server, and several patches ...
theregister

Bug hunter tracks down three massive MCP flaws and one vendor won't fix theirs

Security vulnerabilities in MCP servers for three popular database projects could let attackers execute unintended SQL statements on Apache Doris, exfiltrate sensitive metadata from Alibaba RDS, and ...
Security Boulevard

Microsoft’s May 2026 Patch Tuesday Addresses 118 CVEs (CVE-2026-41103)

Critical102Important0Moderate0LowMicrosoft addresses 118 CVEs in its May 2026 Patch Tuesday release, with no zero-days ...
Morning Overview on MSN

An Apache HTTP server flaw lets attackers crash — or take over — millions of web servers with a single HTTP/2 request

A single malformed web request is all it takes. On May 4, 2026, the Apache Software Foundation quietly filed a vulnerability ...
Morning Overview on MSN

A critical Apache HTTP/2 flaw gives attackers a working proof-of-concept for remote code execution on millions of servers

A vulnerability in Apache HTTP Server’s HTTP/2 protocol handling now has working exploit code circulating among security ...
SecurityWeek

Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server

Apache has released fixes for a dozen HTTP Server and MINA vulnerabilities, including critical and high-severity RCE flaws.
ADTmag

Oracle’s April Patch Update Lands With 481 Security Fixes

Oracle has released its April 2026 Critical Patch Update, and it is a big one: 481 new security patches across a wide range of products, including Oracle Database, Fusion Middleware, Java SE, MySQL, E ...
The New York Times

Apache Corp.

A Times analysis shows that increasingly complex oil and gas wells now require astonishing volumes of water to fracture the bedrock and release fossil fuels, threatening America’s fragile aquifers. By ...
Task & Purpose

US Apache pilots explain how helicopters are shooting down Iranian drones

Pilots who fly Apache helicopters for the Army are fiercely dedicated to their mission of watching over and defending forces below on the ground. But in the heart of every Apache pilot is a secret ...
heise online

Security Updates: Apache HTTP Server and Tika are vulnerable

Attackers can exploit several security vulnerabilities to attack computers running Apache HTTP Server or Tika. The descriptions of the vulnerabilities suggest that attackers could compromise systems ...
GitHub

Apache Spark Connector for SQL Server and Azure SQL

Born out of Microsoft’s SQL Server Big Data Clusters investments, the Apache Spark Connector for SQL Server and Azure SQL is a high-performance connector that enables you to use transactional data in ...
The Aviationist

The Apache Turns 50: A Look at the Iconic Attack Helicopter

Sept. 30, 2025 marks 50 years since the first YAH-64A prototype took to the skies for the first time. Let’s look at how the Apache has maintained its sharp edge over those five decades. Born from the ...